Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:03237-1

Опубликовано: 16 сент. 2025
Источник: suse-cvrf

Описание

Security update for libavif

This update for libavif fixes the following issues:

Update to 1.3.0:

  • CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. (bsc#1243270)
  • CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in stream->offset+size. (bsc#1243269)
  • CVE-2023-6350: Fixed an out of bounds memory to alphaItemIndices. (bsc#1217614)
  • CVE-2023-6351: Fixed a use-after-free in colorProperties. (bsc#1217615)

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise Server 15 SP4-LTSS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise Server 15 SP5-LTSS
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
libavif16-1.3.0-150400.3.6.1
SUSE Manager Proxy LTS 4.3
libavif16-1.3.0-150400.3.6.1
SUSE Manager Server LTS 4.3
libavif16-1.3.0-150400.3.6.1

Ссылки

Описание

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libavif16-1.3.0-150400.3.6.1
Ссылки

Описание

Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libavif16-1.3.0-150400.3.6.1
Ссылки

Описание

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libavif16-1.3.0-150400.3.6.1
Ссылки

Описание

In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libavif16-1.3.0-150400.3.6.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libavif16-1.3.0-150400.3.6.1
Ссылки